WinHex file name buffer overflow

winhex-filename-bo (20139) The risk level is classified as MediumMedium Risk

Description:

WinHex is vulnerable to a denial of service attack caused by a heap-based buffer overflow. A remote attacker could send a specially-crafted file name to overflow a buffer and cause the system to crash or execute arbitrary code on the system.

Platforms Affected:

  • WinHex, WinHex 12.05 SR-14

Remedy:

No remedy available as of November 29, 2008.

Consequences:

Denial of Service

References:

  • WinHex Web page, WinHex: Computer Forensics & Data Recovery Software, Hex Editor & Disk Editor at http://www.x-ways.net/winhex/index-m.html.
  • CVE-2005-1187: Heap-based buffer overflow in WinHex 12.05 SR-14, and possibly other versions, may allow attackers to execute arbitrary code via a long file name argument. NOTE: since this overflow is in the command line of an unprivileged program, it is highly likely that this is not a vulnerability.
  • SECTRACK ID: 1013727: WinHex Can Be Crashed With Maformed Filename

Reported:

Apr 15, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page